Download "lwresd"

Other versions of "lwresd" in Xenial

Changelog

Version: 1:9.10.3.dfsg.P4-8ubuntu1.16

2020-05-19 13:06:31 UTC

bind9 (1:9.10.3.dfsg.P4-8ubuntu1.16) xenial-security; urgency=medium

* SECURITY UPDATE: BIND does not sufficiently limit the number of fetches
performed when processing referrals
- debian/patches/CVE-2020-8616.patch: further limit the number of
queries that can be triggered from a request in lib/dns/adb.c,
lib/dns/include/dns/adb.h, lib/dns/resolver.c.
- CVE-2020-8616
* SECURITY UPDATE: A logic error in code which checks TSIG validity can
be used to trigger an assertion failure in tsig.c
- debian/patches/CVE-2020-8617.patch: don't allow replaying a TSIG
BADTIME response in lib/dns/tsig.c.
- CVE-2020-8617

* SECURITY UPDATE: denial of service crash when deny-answer-aliases
option is used
- debian/patches/CVE-2018-5740.patch: explicit DNAME query could
trigger a crash if deny-answer-aliases was set
- CVE-2018-5740